Launchpad itself

Let community help person suspend user accounts

Bug #495126 reported by Henning Eggers
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Launchpad itself
Fix Released
Low
Henning Eggers
Launchpad itself 10.01

Bug Description

When the community help person requests an account to be suspended by a LOSA (e.g. because it is a pure spam account), the LOSA uses IPerson:+reviewaccount to set the account to deactivated. This is really something the CHR person could do but there is sensitive information on that page and the password can be changed, too.

It should be made accessible to the ~registry team (of which the CHR person is a member) but only display the status picker and the comment box to them.

Related branches

lp:~henninge/launchpad/bug-495126-deactivate-users
Brad Crittenden (community): Approve (code)
Edwin Grubbs (community): Needs Fixing
Diff: 495 lines (+174/-53)
11 files modified
lib/canonical/launchpad/doc/account.txt (+7/-2)
lib/canonical/launchpad/interfaces/account.py (+8/-8)
lib/canonical/launchpad/security.py (+36/-25)
lib/canonical/launchpad/zcml/account.zcml (+4/-1)
lib/lp/registry/browser/configure.zcml (+1/-1)
lib/lp/registry/browser/person.py (+29/-6)
lib/lp/registry/doc/person-account.txt (+2/-2)
lib/lp/registry/stories/person/xx-admin-person-review.txt (+55/-1)
lib/lp/registry/templates/person-review.pt (+2/-1)
lib/lp/services/permission_helpers.py (+29/-4)
lib/lp/translations/model/translationimportqueue.py (+1/-2)
Revision history for this message
Henning Eggers (henninge) wrote :

<sinzui> henninge: in security.py add
<sinzui> class ModeratePerson(ReviewByRegistryExpertsOrAdmins):
<sinzui> permission = 'launchpad.moderate'
<sinzui> usedfor = IPerson
<sinzui> then change EditAccount to
<sinzui> class EditAccount(ModeratePerson):
<sinzui> henninge: I am mistaken I think. The user needs access to his account (to deactivate it) so the permission may need to remain launchpad.Edit
<henninge> sinzui: remain lp.Edit for EditAccount?
<henninge> ok, I'll put that in a bug.
<sinzui> henninge: I think so
<sinzui> henninge: I think the code needs to look like this: http://pastebin.ubuntu.com/338783/

Curtis Hovey (sinzui)
Changed in launchpad-registry:
status: New → Triaged
importance: Undecided → Low
tags: added: chr losa
Henning Eggers (henninge)
Changed in launchpad-registry:
assignee: nobody → Henning Eggers (henninge)
status: Triaged → In Progress
Revision history for this message
Ursula Junque (ursinha) wrote : A commit mentioned this bug

This bug was mentioned in stable r10097 <http://bazaar.launchpad.net/~launchpad-pqm/launchpad/stable/revision/10097>

Changed in launchpad-registry:
status: In Progress → Fix Committed
tags: added: qa-needstesting
Ursula Junque (ursinha)
Changed in launchpad-registry:
milestone: none → 10.01
Henning Eggers (henninge)
tags: added: qa-ok
removed: qa-needstesting
Revision history for this message
Curtis Hovey (sinzui) wrote :

I thought I marked this as QAed three weeks ago. I have used it ti suspend more than 1000 accounts. Sorry for not communicating that it works well.

Revision history for this message
Henning Eggers (henninge) wrote :

Yes, I heard about that. Great job! That's why I could blindly mark it 'qa-ok'. Although, I think I had even tested it on staging earlier.

Curtis Hovey (sinzui)
Changed in launchpad-registry:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.